Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    setup_1.0.5.1360.exe

  • Size

    2.7MB

  • Sample

    221229-qn7qpsgc9z

  • MD5

    c49799b39f9d1b23eead1de5f0cb3e68

  • SHA1

    89f7472d739c3e7b0329ff0bff6fdb6bec6a147d

  • SHA256

    36c32f7087f36a4666ec1ad90ccda265fedc2951663eb35829ac7a50371274ac

  • SHA512

    b3afe66254e8d3bc34e2de0d7989231a6ae00d83e2019ebfaa32b7ee6e679ceaac791d5baecd1880f00c2674c527ea03bd79cddeae8fd1d57f3a1a41853dcccc

  • SSDEEP

    49152:srv57iY7MK34hRDeSMylD6igxbjcNfAG5lIR52JEMl5nyNSVQ8HHde8KNYw:WB7f7MK34hRDUylD6Bxbjs33ImiqyQVN

Malware Config

Targets

    • Target

      setup_1.0.5.1360.exe

    • Size

      2.7MB

    • MD5

      c49799b39f9d1b23eead1de5f0cb3e68

    • SHA1

      89f7472d739c3e7b0329ff0bff6fdb6bec6a147d

    • SHA256

      36c32f7087f36a4666ec1ad90ccda265fedc2951663eb35829ac7a50371274ac

    • SHA512

      b3afe66254e8d3bc34e2de0d7989231a6ae00d83e2019ebfaa32b7ee6e679ceaac791d5baecd1880f00c2674c527ea03bd79cddeae8fd1d57f3a1a41853dcccc

    • SSDEEP

      49152:srv57iY7MK34hRDeSMylD6igxbjcNfAG5lIR52JEMl5nyNSVQ8HHde8KNYw:WB7f7MK34hRDUylD6Bxbjs33ImiqyQVN

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks for any installed AV software in registry

    • Checks whether UAC is enabled

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Enterprise v6

Tasks